logs archiveIRC Archive / Freenode / #exim / 2010 / June / 16 / 1
Xires
what does '<' mean for listening interfaces? I can't find info on it in any of the documentation
local
local_interfaces = <; [1.2.3.4]:25; [2.2.2.1]:2525;
Xires
local; so what does '<' mean on that line?
local
i dont know
but i know it doesnt work if its not in there
Xires
says nothing in documentation that I can find either
I'd hate to have to search through the source to find it
local
yeah, that could take a while
l337ingDisorder
Can anyone help? Exim is unable to send any messages - the log says 2010-06-16 01:03:11 1OOnXW-00015C-7c aspmx.l.google.com [74.125.53.27] Connection timed out
I can ping aspmx.l.google.com no problem
why would exim fail to connect?
borei_
hi all
i have question about host_randomize
if host from the list was down
when exim will try to initiate connection to it ?
which parameter is responsible for it ?
well it's not about hosts_randomize, but about general behaviour for host's list
anyway, anybody ?
l337ingDisorder
borei_: I'm still waiting on any signs of life from a question I asked around 18:00 Pacific time
recommend you set the chan to log and go watch TV ;)
         

borei_
lol
what was your question, who knows may be i have answer ;-)
l337ingDisorder
Question was:
Can anyone help? Exim is unable to send any messages - the log says 2010-06-16 01:03:11 1OOnXW-00015C-7c aspmx.l.google.com [74.125.53.27] Connection timed out
I can ping aspmx.l.google.com no problem
why would exim fail to connect?
aha.. didn't set qualify_domain properly
borei_
did you try to connect to port 25 on that host ?
Xires
OMFG THIS IS INSANITY!
I am continuously getting 'no IP address found for host' errors
I cannot do ANYTHING to change it
henk
i doubt that.
Xires
henk; have you any suggestions?
henk
Xires: sure: ask a proper question.
Xires
(Action) calms self
henk
good idea too :)
Xires
I am continuously getting a number of errors with exim that I am unable to resolve..among those, is a 'no IP address found for host' issue. I'm using a relatively default configuration with occasional minor changes here & there to try different things to resolve my issue. I always return the config back to default before trying something else and this is continuing to confuse and irritate me.
henk
Xires: ok, can you give some context to this message?
Xires
henk; further details: I understand the issue with the IP address it's giving, it cannot be verified properly via DNS(the domain resolves to the IP, the IP resolves to another host, that host cannot resolve to anything)
henk
i.e. what's the host? does it happen on all hosts or only on certain hosts? is it a problem? if so, why?
Xires
this is the only host for which an attempt has been made..it is the IP of the machine itself
it is the IP upon which exim is listening
henk
ah ok... not sure if this has something to do with it but it is a common cause for some problems like this: what do 'hostname' and 'hostname -f' return?
Xires
hostname : node
hostname -f : node.domain.tld
/etc/hosts is correctly configured
henk
ok, good. is the ip a public or private?
Xires
DNS is as correctly configured as possible
IP is public
henk
and you get a reverse dns resolution for that ip?
Xires
domain resolves to IP, IP resolves to a diff host(something controlled by the hosting NOC), that host cannot be resolved
         

henk
hm, could be the problem imho...
Xires
I understand that but it is impossible for me to fix unless I break a number of laws as well as the ToS/AUP
surely there must be a way to get exim to bypass the IP
and assume that the IP for which it is running on must be automatically 'acceptable'
henk
are you sure that message is actually a problem?
Xires
I cannot even understand the acl configuration though I've tried a number of suggested modifications
considering that e-mail cannot be sent from the server at all, yes
this kinda makes SMTP useless and thus exim itself useless since that's it's intended purpose
henk
check the logs. i doubt that is actually the problem exim is having.
Xires
I have multilog watching all exim-related logs
sudo multitail -i exim/main.log -i exim/panic.log -i exim/reject.log -i maillog -i messages
henk
yeah, that's great...
Xires
2010-06-16 03:06:20 no IP address found for host 67-23-227-202.static.dimenoc.com (during SMTP connection from [67.23.227.202])
henk
yes. and?
Xires
that's from the main log
that is the only error displayed
the line above that indicates the PID of the running exim process
the line below that is multitail telling me what logfile it is
henk
just give the complete log for one mail...
Xires
that is it
henk
no.
and if it is, you are not losing any mail at all.
that line is NOT an error. do you understand it now? it is NOT the cause for a problem unless you configured it that way.
Xires
henk; but the mail is not sent, there's no additional details in any of those logfiles..
what am I missing?
henk
the correct logfile perhaps? the correct syntax for multitail? a clue? i don't know...
but that's definitely not everything exim logs about a mail...
Xires
that's all that's logged for that..I'm pasting the logs from an accepted telnet session
there's a difference, obviously
http://www.pastie.org/private/kus50a641uwjhpmsffjnaw
henk; ^
henk
yup
Xires
I realize that that is a normal mail log..however, for the other case, it is not working
that's non-telnet session
let me try specifying a source address for the telnet session and see if that helps elaborate
henk
perhaps you just 'drop' (or something) connections where the reverse dns does not match up?
Xires
henk; that's what I believe exim is doing
it's attempting to verify the IP address(I'm guessing due to acl configuration) right after the helo/ehlo..because it cannot, it denies the message
henk
Xires: exim only does what _you_ make it do...
Xires
hence not getting past the single log entry
is there a way to get it to avoid checking the DNS for it's own IP?
henk
67-23-227-202.static.dimenoc.com that's your host?
Xires
mail.hacktalk.net is the mailserver host
which DNS's to 67.23.227.202, which in turn DNS's to the above mentioned host, which itself does not resolve
henk
that should not be a problem.
just check your conf or do a exim -bh to see what might be going on...
Xires
henk; how might I unfreeze mail in the mail queue?
henk
Xires: it's called "to thaw" a mail...
Xires
ty
much easier to check the manpage if you have the correct term to search for
henk
ack :)
TinoW
ah hello
seems I'm a little bit stupid but I can't figure out how to regex filter on a few header lines, for example From: in the smtp data acl
problem 1) my regex doesn't work. it catches From: but nothing after it, e.g. ^(?i)From:.*?@domain.tld
problem 2) it seems to match everywhere in the mail, not only the body
I'm open to suggestions :-)
local
when people have a problem, they think, "I know, i'll use regex", now they have 2 problems
TinoW
local: yes of course. I wouln't use regex if there was a better way but it should work at least
henk
TinoW: can you paste a From: line that doesn't match your regexp please?
TinoW
henk: the problem is that all are matching
henk: I have reported the matching group in the message and it appears it's only matching From: and disregarding the rest of the pattern
henk
TinoW: then i don't understand the two problems. afaict they contradict each other...
either it catches "From: but nothing after it" or "it matches everywhere in the mail"
TinoW
henk: not really, the regex work on lines, so what matches in the headers also match in the body, and it matches on From: wherever it appears but not on the whole pattern
henk: the 2nd problem is interesting to be solved for the few cases where you get an replay to mail with the full mail attached
henk
TinoW: what's that (?i)?
TinoW
henk: supposed to switch to case insensitive matching
henk
TinoW: where do you have that notation from?
TinoW
henk: regex documentation - should be PCRE
henk
hm, that regex seems to work perfectly at least in pcretest...
TinoW
henk: that's what I thought
regex acl condition warning - error in regex '^(?i)(from': missing ) at offset 10, skipped.
I tried with ( ) around the expression for proper grouping
why does it insists on stopping the regex after from?
aha, the : was responsible for that
ok but the interesting output is exactly after the headers some processing kicks in, listing the from: address in the mail and telling: in "@:localhost:dsearch;/etc/exim4/virtual"? yes (matched "@")
question would be how to catch that?
aha, $h_From: to the rescue
Nickola
Hello. I need some help setting up an exim filter. I would like to filter out some phishing emails. They are coming from different IP address's, with different from and to addresses. The only thing the same is the content of the email.
I would like to filter out emails based on the message_body
but I cannot seem to get the syntax right.
The messages all contain the same misspelled word: "temporanly", so I have a copy of the email saved as an .eml and this is what I am trying to do:
exim -bem phishing.eml ${if match{$message_body}{\temporanly\}{yes}
and I get: -bash: ${if mtch{$message_body}{\temporanly\}{yes}: bad substitution
please...what am I doing wrong?
well...as you can see, I copied and pasted the -bash error from an attempt when I intentionally misspelled the 'match' condition to see if it made any difference. It did not.
henk
Nickola: you need to quote in the shell...
Nickola
like this? exim -bem execulink.com.account.notification.eml "${if {match{lc:$message_body}{\temporanly\}}{yes}}"
henk
try
but actually i doubt you really want to escape that t...
if you escape the closing }, you should probably also escape the opening {... or neither.
Nickola
# exim -bem execulink.com.account.notification.eml "${if {match{$message_body}{temporanly}}{yes}}"
-bash: ${if {match{$message_body}{temporanly}}{yes}}: bad substitution
like that?
henk
yeah, now escape everything the bash is trying to interpret
Nickola
hahaha oops.
or use single quotes. /facepalm
henk
;)
Nickola
okay...now I'm getting REAL reponses here....
Failed: condition name expected, but found "{match{$message_"
:-(
I'm not sure what that means...
condition name?
hrm...is there a way to get exim to print out what is currently in $message_body?
its not matching, and I'm wondering if it is just outside the first X bytes that $message_body reads.
(Action) is gone, autoaway/10m (l!on)
henk
Nickola: ugh, that's so ugly... please switch that off.
Nickola
GAH
henk
Nickola
sorry about that.
I thought I had switched that off...but I'm on a different machine.
henk
:)
Nickola
henk: I don't think that exim -bem is reading in the file correctly! Is my syntax correct?
perhaps my .eml file is not formatted correctly...
Johnathan_Phan
yo
guess no one is home
local
they all at home, thats why they not here
Johnathan_Phan
lol
home! home!
local
~/
Johnathan_Phan
this time of day
:(
hi there
local
well where i am its 5:30 and a public holiday (bank holiday i think you ppl call it)
Johnathan_Phan
ahh your in Souyth Africa
South Africa
local
yip
Johnathan_Phan
you in cape town?
local
no, johannesburg
Johnathan_Phan
I see
I have collugues based in SA
local
ok
Johnathan_Phan
so what is this channel used for, do people actaull discuss how to max out exim?
like best practice or even custom jobs?
local
i dunno
Johnathan_Phan
how about you local
what is your experience with exim?
I have to administrate a load of box's
phx
this channel is for answering gazillion-line questions by pointing at the docs
Johnathan_Phan
haha
thats helpfull
do the people that work on the program hang out here?
phx
dunno
they've been never needed
Johnathan_Phan
so phx, what has been your experience with exim?
phx
the swiss army knife of MTAs
Johnathan_Phan
lol
it's okay
my problem comes when queues get very big
« prev 1 2 next »